Security & Testing Habilidades de Claude

Security Header Generator

Configures robust security HTTP headers and Content Security Policies to protect web applications from common vulnerabilities.

Error Handling Completeness

Audits code for missing error handling, timeouts, and logging to prevent production crashes in external integrations.

Solidity Security

Implements secure smart contract patterns and audits Solidity code to prevent common blockchain vulnerabilities and exploits.

Skill Reviewer

Performs systematic 14-phase audits of Claude Code skills to ensure technical accuracy, documentation standards, and production readiness.

Static Security Analysis (SAST)

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in source code.

Spec Validator

Validates code implementations against technical specifications to ensure requirement coverage, test compliance, and documentation accuracy.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build reliable, bug-free web applications and automated test suites.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal workflows in Python using pytest, time-skipping, and advanced mocking.

Assertion Helper

Generates specific, context-rich test assertions and actionable error messages across multiple programming languages and frameworks.

Python Testing Patterns

Implements professional testing strategies for Python applications using pytest, advanced mocking, and test-driven development best practices.

Kubernetes Security Policies

Implements production-grade Kubernetes security configurations including NetworkPolicies, Pod Security Standards, and RBAC to harden cluster environments.

JavaScript Testing Patterns

Implements comprehensive testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Auth Implementation Patterns

Implements secure authentication and authorization systems using modern patterns like JWT, OAuth2, and RBAC.

Code Review

Provides comprehensive guidelines and best practices for conducting high-quality code reviews and writing constructive feedback.

Vibesafe Code Generation & Testing

Manages the Vibesafe toolchain to scan units, generate implementations from specifications, and run quality tests within Claude Code.

Web3 Smart Contract Testing

Develops and executes comprehensive test suites for Solidity smart contracts using Hardhat and Foundry frameworks.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to eliminate data-driven bugs by enforcing checks at every system boundary.

Code Review

Performs comprehensive audits of modified code to identify security vulnerabilities, performance bottlenecks, and violations of project-specific coding standards.

Authenticated Route Tester

Validates authenticated API routes using automated cookie-based JWT token generation and mock authentication patterns.

GitHub CLI Search Test Suite

Executes a comprehensive, parallelized test suite for GitHub CLI search capabilities to ensure command accuracy and production readiness.

QA Screenshot Validation

Validates UI screenshots for layout integrity, element clipping, and rendering issues with intelligent viewport handling.

RAG/CAG Security Patterns

Secures retrieval-augmented and cache-augmented generation systems through multi-tenant isolation, document-level access control, and prompt injection prevention.

QA Element Extraction

Automates the capture of specific UI component screenshots from QA test procedures to create clear visual documentation.

QA Test Management

Manages the end-to-end QA test lifecycle with automated naming conventions, directory structures, and traceability to requirements.

OAuth Implementation

Implements secure OAuth 2.0 and OpenID Connect authentication flows using standardized industry patterns and security best practices.

Monty Django Code Review

Conducts hyper-pedantic, correctness-first backend reviews for Python and Django applications with a focus on multi-tenant safety.

QA Testing & Methodology

Implements standardized QA frameworks and test design patterns to ensure comprehensive software quality and accessibility coverage.

Agent Tool Permissions

Configures granular tool permissions and path restrictions for secure, multi-agent Claude Code workflows.

Privacy Compliance

Implements robust data protection standards and regulatory compliance for global privacy jurisdictions.

MCP Security Architect

Implements a robust 5-layer defense architecture to secure multi-agent systems and MCP pipelines against prompt injection and unauthorized access.